Microsoft Windows XP explorer.exe Multiple Memory Corruption Vulnerabilities
BID:9707
Info
Microsoft Windows XP explorer.exe Multiple Memory Corruption Vulnerabilities
| Bugtraq ID: | 9707 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Unknown |
| Local: | Yes |
| Published: | Feb 20 2004 12:00AM |
| Updated: | Feb 20 2004 12:00AM |
| Credit: | The disclosure of these issues has been credited to Jellytop. |
| Vulnerable: |
Microsoft Windows XP Professional SP1 Microsoft Windows XP Professional Microsoft Windows XP Media Center Edition Microsoft Windows XP Home SP1 Microsoft Windows XP Home |
| Not Vulnerable: | |
Discussion
Microsoft Windows XP explorer.exe Multiple Memory Corruption Vulnerabilities
It has been reported that Microsoft Windows Explorer for Windows XP may be prone to a multiple memory corruption vulnerabilities including a heap based overflow and an integer overflow. The issues exist in the Metafile processing code.
These vulnerabilities have been reported in Microsoft Windows XP, however, other operating systems provided by Microsoft may be vulnerable as well. Although unconfirmed, these issues may also exist in Microsft Internet Explorer due to code similarities.
It has been reported that Microsoft Windows Explorer for Windows XP may be prone to a multiple memory corruption vulnerabilities including a heap based overflow and an integer overflow. The issues exist in the Metafile processing code.
These vulnerabilities have been reported in Microsoft Windows XP, however, other operating systems provided by Microsoft may be vulnerable as well. Although unconfirmed, these issues may also exist in Microsft Internet Explorer due to code similarities.
Exploit / POC
Microsoft Windows XP explorer.exe Multiple Memory Corruption Vulnerabilities
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Microsoft Windows XP explorer.exe Multiple Memory Corruption Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Microsoft Windows XP explorer.exe Multiple Memory Corruption Vulnerabilities
References:
References:
- Microsoft Technet Security (Microsoft)
- Re: Windows XP explorer.exe heap overflow. (Dragos Ruiu
- Re: Windows XP explorer.exe heap overflow. (Eli K.
- Windows XP explorer.exe heap overflow. (